SandboxEscaper / New_0day_exploit
☆11Updated this week
Related projects: ⓘ
- Not necessarily related to software bugs and exploits; this repo contains snippets of code that demonstrate some interesting functionalit…☆33Updated 3 years ago
- QuickPatch: A patching tool☆12Updated 4 years ago
- TrustZone or TreacheryZone? Giving a vendor more trust increases their power to abuse us surreptitiously.☆14Updated 2 years ago
- Binary Ninja plugin for importing symbols to a kernel binary from /proc/kallsyms☆19Updated 2 years ago
- Browser exploitation v8 and sandbox escape challenges with solutions.☆26Updated 2 years ago
- An IOKit kext designed for microarchitectural security research on M1☆26Updated last year
- Ditto.☆16Updated 4 years ago
- SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x☆30Updated 3 years ago
- ☆29Updated 8 months ago
- An AFL scaling benchmarking tool☆18Updated 4 years ago
- Proof of Concept of TrustZone exploit☆15Updated 5 years ago
- MacOS kernel memory leak (4 bytes)☆29Updated 4 years ago
- ☆19Updated this week
- Kernel heap read buffer overflow on macOS/iOS requiring root.☆10Updated 6 years ago
- IDA+Triton plugin in order to extract opaque predicates using a Forward-Bounded DSE. Example with X-Tunnel.☆51Updated 5 years ago
- IDA Database Importer plugin for Binary Ninja☆37Updated last week
- IDA plugin that resolves PPL calls to the actual underlying PPL function.☆56Updated last year
- Configure SPI flash write protection.☆23Updated 4 years ago
- A repository teaching bss/data segment exploitation techniques.☆12Updated 5 years ago
- NinjaDiff is a binary diffing plugin for Binary Ninja. Read more on our blog, and contribute code & improvements!☆57Updated 2 years ago
- JS modules for Frida based tools to add code coverage to your instrumentation scripts.☆24Updated 5 years ago
- ☆33Updated last year
- Ghidra loader module for the Mobicore trustlet and driver binaries☆27Updated 4 years ago
- Load function names from an IDA Pro database inside GDB☆20Updated 5 years ago
- Binary Ninja plugin that decompiles the whole binary and saves them in a directory.☆20Updated last year
- Here be dragons. Or Slides. Or Papers. Or Nothing :)☆30Updated 5 years ago
- Webkit JavascriptCore Array unshift function had a race condition, it leads to RCE.☆44Updated 9 months ago
- ☆35Updated 3 years ago
- CVE-2017-13868: Information leak of uninitialized kernel heap data in XNU.☆28Updated 6 years ago
- Binary Ninja Plugin for Generating Callgraphs☆17Updated 2 years ago